Assessment · Start here

See your security gaps in about 20 minutes.

Answer plain-language questions mapped to the NIST Cybersecurity Framework. Get a posture score and your first priorities. No account needed to start.

No account for the free baselineEvidence-focused resultsInstant score
Need 106-question depth, evidence, and tracking? Compare plans

Free assessment · NIST CSF 2.0

PR.AA
Question 7 of 30

How broadly are strong authentication, including MFA, enforced for users, administrators, services, and remote access?

No MFA or only passwords
MFA protects some high-risk accounts
MFA covers most employees and remote access
MFA covers users, administrators, and privileged workflows with limited exceptions
Risk-based authentication and strong credential controls are enforced across users, services, and hardware

Maturity scale: None · Basic · Defined · Managed · Optimized

Choose & start

Pick the assessment that fits.

Start the free baseline now, or begin a deeper paid assessment. Full feature and price comparison lives on the pricing page.

Compare every feature and plan

Free Assessment

First baseline, no commitment

Free
30 questions15-20 minutes
  • 30 NIST CSF 2.0 questions
  • Posture score and weak areas
  • Top remediation priorities
  • Starter export available for $9
Start Free Assessment

Enterprise

Custom scope and stakeholders

Contact Sales
Custom scope
  • Customized to your environment
  • Remediation roadmap
  • Stakeholder readouts
  • Implementation partner handoff
Contact Sales

How it works

Three steps, start in the next minute.

01

Answer

Plain-language NIST questions, about 20 minutes. No security jargon required.

02

Score

Get an instant posture score and see your weakest control areas.

03

Act

Take your top remediation priorities and start, or go deeper when ready.

Ready to assess your security posture?

Start with a free baseline and get immediate priorities for your cybersecurity gaps.